Exam Paper

Question 1

What is the difference between middleware and hypervisor

Answer 1

Middleware is a software intermediary for communication between applications, which simplifies development and integration in distributed systems

Hypervisors manage virtual machines for multiple OS on a single physical machine, enabling virtualization, improving resource utilisation

Question 2

What are microservices

Answer 2

Pieces of an application that run independently and perform one service only, operating in its own environment and storing its own data

Question 3

Advantages of Microservices

Answer 3

Resilience
Selective scalability
Extensibility
Flexibility (prog languages)

Question 4

Explain why cloud computing is not network computing

Answer 4

CC extends beyond network computing, offering a broad range of services and resources.

CC provides on-demand access to a shared pool of configurable computing resources over the internet

Question 5

What is Virtualization?

Answer 5

Creating multiple virtual instances of an entity on a single physical machine

Enhances hardware utilisation, scalability, and isolation, crucial for CC

Question 6

What is Paravirtualisation

Answer 6

Definition: Virtualization technique requiring cooperation between the guest OS and hypervisor for efficient resource utilization.

Key Point: Guest OS is modified to be aware of the virtualized environment, enhancing performance compared to full virtualization.

Question 7

What is an Elastic IP Address

Answer 7

Definition: Static and publicly routable IP address in cloud computing (e.g. AWS) that can be easily reassigned between virtual machines.

Key Point: Enhances flexibility and high availability by enabling quick remapping of IP addresses within the cloud infrastructure.

Question 8

Define Cloud native applications

Answer 8

Definition: Software applications purpose-built for cloud environments, utilizing cloud services, microservices, containerization, and DevOps practices for enhanced scalability, flexibility, and automation.

Key Points: Designed for optimal performance in the cloud, promoting agility, resilience, and rapid development cycles.

Question 9

What is a service mesh and what is its purpose

Answer 9

A service mesh is an infrastructure layer built into an app. This visible layer can document how well different parts of an app interact, so it becomes easier to optimise communication and avoid downtime as an app grows.

Question 10

list 3 characteristics of cloud native applications

Answer 10

Microservices Architecture: Decomposed into small, independently deployable services for flexibility and scalability.

Containerization: Utilizes container technologies like Docker for consistent deployment and management across environments.

DevOps Practices: Embraces DevOps for collaboration, automation, and CI/CD pipelines, enhancing agility and efficiency in the cloud.

Question 11

Challenges of Cloud-Native Applications

Answer 11

Complexity of Microservices Management:
Challenge: Coordinating and managing numerous microservices in a way that ensures seamless communication and integration.

Security Concerns:
Challenge: Addressing the complexities of security in a distributed environment, including securing individual microservices and managing access controls.

Dependency on Cloud Service Providers:
Challenge: Balancing reliance on cloud services while avoiding vendor lock-in, considering potential challenges in migrating between different cloud providers.

Continuous Monitoring and Observability:
Challenge: Ensuring effective logging, monitoring, and observability in the dynamic and distributed nature of cloud-native applications for timely issue identification and resolution.

Question 12

Discuss one Limitation of Cloud Computing

Answer 12

Data Security and Privacy Concerns:

Data Breaches:
Concern: Potential for unauthorized access leading to compromise of data confidentiality and integrity.

Regulatory Compliance:
Concern: Challenges in ensuring compliance with industry-specific and regional regulations governing data storage and processing.

Loss of Control:
Concern: Relinquishing some control over data infrastructure when entrusting it to a third-party cloud provider.

Data Residency:
Concern: Issues related to storing data in specific geographic locations to comply with regulatory requirements.

Question 13

Discuss the differences between virtual machines and containers

Answer 13

Hypervisor vs. Container Engine:
VMs: Run on a hypervisor, creating and managing virtualized environments.
Containers: Run on a container engine (e.g., Docker), sharing the host OS kernel.

Resource Overhead:
VMs: Greater resource overhead with full OS, consuming more memory and storage.
Containers: Lightweight, sharing the host OS kernel for faster startup, lower resource usage.

Isolation:
VMs: Strong isolation with individual OS, file system, and resources.
Containers: User space isolation; share the kernel, offering efficiency but different security implications.

Portability:
VMs: Less portable due to encapsulating the entire OS.
Containers: Highly portable, encapsulating only the application and dependencies.

Question 14

Benefits of Computation offloading techniques

Answer 14

improves performance and responsiveness in computation intensive mobile applications.

Reduces the computational load on the mobile device by distributing processing tasks to external resources

Question 15

Placement of computing resources

Answer 15

Location: Cloud servers are suitable for hosting computing resources.

Advantages: Offers scalability and flexibility for handling variable computational demands.

Question 16

Benefits and applications of Microservices architecture

Answer 16

Benefits: Enables independent scaling, flexibility, and efficient management of diverse features.

Application: Suitable for dynamic and feature-rich applications, supporting faster updates and fault isolation.

Question 17

Define elasticity

Answer 17

The ability of a system to automatically adapt to changing workloads by provisioning and de-provisioning resources dynamically.

Question 18

Define scalability

Answer 18

The capability of a system to handle a growing amount of work or to be enlarged to accommodate growth.

Question 19

What is hardware virtualisation? 2 pros and cons

Answer 19

a VMM is directly installed on the hardware system, VM hypervisor manages the memory, processor and resources

+ reduced maintenance overhead

+ minimal required changes in guest OS

(-) requires explicit support in the host CPU

(-) limits efficiency and scalability

Question 20

What is the difference in the purpose of containers and unikernels?

Answer 20

Containers are designed to run multiple processes but unikernels are designed to run a single process.

Question 21

How do containers differ from VMs?

Answer 21

Containers don’t use a hypervisor and provide faster resource provisioning.

Question 22

How do containers leverage the host operating system?

Answer 22

They isolate processes and control their access to resources.

Question 23

What is OS virtualisation? 2 pros and cons

Answer 23

VMM installed on the OS, useful for simulating multiple environments in parallel

+ multiple VMs operate independently

+ limited impact of malfunctions

• admin overhead
• heavy file system consumption

Question 24

What is a Container Engine/Runtime?

Answer 24

A container engine processes container images based on user requests. It has an embedded runtime component that provides functionality such as security policies and communication channels with the kernel.

Question 25

What is a Container Orchestrator?

Answer 25

A tool that supports development, QA, and production environments for continuous testing. It schedules workloads dynamically and provides standardized application definition files.

Question 26

What is the difference in OS usage between containers and unikernels?

Answer 26

Containers share the kernel of the host OS while unikernels include a small kernel in each deployment unit.

Question 27

What is the difference in resource allocation between containers and unikernels?

Answer 27

With containers, the OS handles resource allocation but with unikernels, the hypervisor handles resource allocation.

Question 28

What is SOAP?

Answer 28

Simple Object Access Protocol is a messaging protocol that allows programs that run on different operating systems to communicate using XML

Question 29

What is a Distributed System?

Answer 29

A collection of independent computing entities that are interconnected via a network to share resources and are capable of collaborating on a service/task

Question 30

What are some reasons to virtualise?

Answer 30

Cost reduction

isolation

testing and evaluation

easy duplication

Question 31

What is server virtualisation? 2 pros and cons

Answer 31

a VMM is deployed on the server and the server is divided into multiple virtual servers

+ Efficient and reliable backup and recovery

+ Supports IT operations

• significant upfront costs
• lower security and data protection

Question 32

Containers vs Unikernels. Choose containers if

Answer 32

• you want a well documented, supported solution
• running an app that features complex workloads
• prefer simple deployments

Question 33

Containers vs Unikernels. Choose Unikernels if

Answer 33

• you want to maximize security
• minimize resource consumption
• achieve complete platform independency

Question 34

what is serverless computing and List the advantages of it

Answer 34

Serverless computing is a method of providing backend services on an as-used basis, allowing users to deploy code without the hassle of worrying about the underlying infrastructure

• lower costs
• simplified scalability
• simplified backend code
• quicker turnaround

Question 35

What is REST architecture?

Answer 35

Representational State Transfer, is an architectural style for designing networked applications. It relies on a stateless communication model, where clients and servers exchange information

Question 36

What is RPC?

Answer 36

RPC (Remote Procedure Call) protocols are simple means to send multiple parameters and receive results by invoking executable actions or processes

Question 37

what is RAID?

Answer 37

Redundant Array of Independent Disks

Question 38

Give a brief description of the three basic steps used in Modern Pipelines

Answer 38

During Collection, raw data is loaded into a repository, often in a raw data zone

During Transformation, the data is transformed with data from other sources, and the data types are modified so they are ready for data consumption

Delivery makes business-ready data available to other staff.

Question 39

What is a data pipeline

Answer 39

A set of data processing elements that move data from source to destination, often from one format to another

Question 40

Give a brief description of RAID 0 (Striping)

Answer 40

Data is striped across multiple disks for improved performance. However, there is no redundancy, so the failure of one disk can result in data loss.

Question 41

Give a brief description of RAID 1 (Mirroring)

Answer 41

Data is duplicated across two disks for redundancy. If one disk fails, the data is still available on the other

Question 42

Give a brief description of RAID 5 (Striping with Parity)

Answer 42

Data is striped across multiple disks, and parity information is used for fault tolerance. If one disk fails, the parity information can be used to reconstruct the data.

Question 43

How do Network-attached storage(NAS) and Storage-area networks (SANs) differ?

Answer 43

NAS is a single storage device that is connected to a local network while SANs include storage devices in the local network

Question 44

What is a Network File System (NFS)

Answer 44

a network abstraction over a file system that allows a remote client to access it over a network in a similar way to a local file system

Question 45

What is the key distinction between data lakes and data warehouses regarding the type of data they store?

Answer 45

Data lakes store data of all structure types, including raw and unprocessed data, whereas data warehouses store data that has been treated and transformed for specific purposes

Question 46

What is a significant difference in storage options and complexity between data lakes and data warehouses?

Answer 46

Data lakes offer more storage options, have more complexity, and have different use cases compared to data warehouses

Question 47

What differentiates the data storage requirements for data lakes and data warehouses, especially concerning schema design and data loading?

Answer 47

Data warehousing requires schema design before saving data and only supports loading structured data. In contrast, data lakes have no such requirements and can store any data at any scale

Question 48

What is the Compute Over Data paradigm?

Answer 48

a computing paradigm where processing of data is performed near the location of the data

Question 49

Differences between Static and Dynamic Computation Offloading

Answer 49

Static: specific parts are always executed on the cloud

Dynamic: the application contains a module that decides at runtime whether parts of a program will be executed on the cloud or locally

Question 50

What is Edge Computing?

Answer 50

A network architecture concept that enables CC capabilities and an IT service environment at the edge of any network

Question 51

Extra challenges when securing PaaS

Answer 51

• Limited control over Infrastructure
• Vendor lock-in concerns
• Data security and compliance
• Data encryption and privacy
• Integration and External Services
• DevOps and Continuous Integration/Deployment (CI/CD)

Question 52

API security considerations

Answer 52

• Employ secure authentication protocols
• Ensure data transmission is encrypted
• Validate and sanitise input data
• Implement rate limiting and throttling mechanisms
• Manage the life cycles of APIs
• Implement robust logging and monitoring capabilities

Question 53

Why is securing APIs crucial in IaaS platforms?

Answer 53

IaaS platforms heavily rely on APIs for resource provisioning and management.

Question 54

What challenge does vulnerability management pose in IaaS environments, and why is it challenging to ensure all resources are up-to-date with the latest security patches?

Answer 54

Identifying and patching vulnerabilities in a timely manner is challenging in IaaS due to numerous virtual instances and a fast-paced deployment model.

Question 55

What is a challenge associated with limited control over infrastructure in PaaS, particularly concerning security configurations?

Answer 55

Limited control over infrastructure in PaaS makes it challenging to set custom security measures due to the abstracted underlying infrastructure

Question 56

Why does data security become critical in PaaS platforms?

Answer 56

Data security is critical in PaaS due to shared resources

Question 57

What is crucial for maintaining privacy and meeting compliance requirements in PaaS, especially when dealing with sensitive data?

Answer 57

Proper encryption of data at rest, in transit, and during processing is crucial in PaaS for maintaining privacy and meeting compliance requirements.

Question 58

Why is securing integrations with external services and APIs important in PaaS applications?

Answer 58

to prevent security vulnerabilities

Question 59

What challenges may organizations face regarding data residency and compliance when using SaaS

Answer 59

to understand and ensure compliance with data residency requirements and international regulations, particularly when data is hosted in multiple geographic locations.

Question 60

What limitations might organizations encounter in SaaS applications?

Answer 60

Customisation, posing challenges for aligning with specific security requirements or integrating seamlessly with other on-premises or cloud-based solutions.

Question 61

What challenges may arise when integrating SaaS applications with on-premise systems?

Answer 61

security challenges, especially concerning data flow and access controls

Question 62

Why is securing APIs crucial in SaaS applications, and what specific measures are important for preventing data breaches or unauthorized access?

Answer 62

SaaS applications often expose APIs for integration. Securing these APIs, including proper authentication and authorization mechanisms, is crucial to prevent data breaches or unauthorized access.

Question 63

What is essential for maintaining business continuity when using SaaS?

Answer 63

understanding the provider’s SLAs, backup, and disaster recovery mechanisms

Question 64

What role do end-users play in SaaS security?

Answer 64

preventing issues like unauthorized sharing of sensitive information or falling victim to phishing attacks.

Question 65

How to ensure data resilience when using SaaS?

Answer 65

Understanding of the backup and recovery processes of the provider

Question 66

In terms of SaaS reliability and availability, what measures can organizations take to maintain business continuity?

Answer 66

Organizations can maintain business continuity by understanding and adhering to provider SLAs, backup, and disaster recovery mechanisms, ensuring the availability and reliability of SaaS applications.

Question 67

Why should you validate and sanitise input data in regard to API Security?

Answer 67

To prevent injection attacks

Question 68

How to protect APIs from abuse and potential denial-of-service attacks?

Answer 68

By implementing rate limiting and throttling mechanisms

Question 69

What should you regularly review and update in an APIs lifecycle?

Answer 69

Security measures

Question 70

In API security, how do you detect and respond to security incidents?

Answer 70

Implement robust logging and monitoring capabilities

Question 71

What should you thoroughly assess and understand when integrating with third-party APIs

Answer 71

Their authentication mechanisms, data protection practices, and overall security posture.

Question 72

What is Mobile Cloud Computing

Answer 72

An infrastructure where both the data storage and data processing happen outside of the mobile device

Question 73

What is Device-to-Device Collaboration and how does it work?

Answer 73

Device-to-device collaboration involves multiple devices cooperating (locally) to perform a computation task.

How it works:

Devices communicate directly using Wi-Fi, Bluetooth, or ad-hoc networks.
Computation task is divided, and each device is assigned a portion.
Devices collaborate by sharing intermediate results or coordinating efforts.
Final result is obtained by aggregating partial results or iterative exchanges.

Question 74

What are Sockets and how do they work

Answer 74

Sockets are a communication method for processes on different devices to exchange data (over a network)

How it works:

1. Client establishes a connection to the server using sockets.
2. Computation task is divided.
3. Client sends data/instructions to the server through sockets.
4. Server performs computation.
5. Results are sent back to the client through the socket connection.

Question 75

Give a brief overview of the factors affecting decentralisation

Answer 75

Architectural: how many physical computers is a system made up of?

Political: how many individuals or organizations control the computers that the system is made up of?

Logical: does the interface and data structures that the system presents and maintains look more like a single monolithic object, or an amorphous (shapeless) swarm?

Question 76

What is the Cloud-Edge continuum?

Answer 76

a spectrum covering everything from big cloud data centers to smaller edge devices.

Question 77

Where to place computing and data processing resources within the cloud-edge continuum?

Answer 77

depends on factors like latency, data volume, cost, and specific use cases

Question 78

What are some challenges behind securing IaaS?

Answer 78

• Shared responsibility model
• API Security
• Vulnerability Management
• Incident Response and Forensics
• Continuous Monitoring and Auditing

Question 79

What are some challenges behind securing SaaS?

Answer 79

• Data residency and compliance
• customisation limitation
• data security and privacy controls
• Integration with on-premise systems
• Security of APIs
• Service Reliability and availability
• User education and awareness
• Data backup and recovery

Question 80

Potential attacks on APIs

Answer 80

API abuse or injection

Question 81

What is the shared responsibility model in the context of IaaS, and what are the respective responsibilities of the provider and customers?

Answer 81

The shared responsibility model in IaaS means the provider secures the infrastructure, while customers are responsible for securing their data and applications.

Question 82

Why does incident response become more complex in a distributed and virtualized IaaS environment?

Answer 82

Establishing effective incident response plans and conducting forensics investigations may require specialized tools and expertise.

Question 83

Why is achieving continuous monitoring and auditing challenging in a dynamic IaaS environment, and what aspects should be regularly monitored for maintaining security?

Answer 83

Achieving continuous monitoring and auditing in a dynamic IaaS environment can be resource-intensive. Regular monitoring of configurations, access controls, and activities is essential for maintaining security.

Question 84

What concerns may arise in adopting a PaaS solution regarding vendor lock-in?

Answer 84

Migrating applications to another platform can be challenging, and users may feel constrained by specific security features of the chosen PaaS provider.

Question 85

What does “as a service” offer

Answer 85

1. scalability
2. multi-tenancy (resource sharing)
3. device independence (ease of access)
4. easily acquirable

Question 86

List the advantages of Cloud Storage

Answer 86

1. cheaper storage solution than physical
2. convenient data sharing
3. reliability

Question 87

List the disadvantages of Cloud Storage

Answer 87

1. network connection reliance
2. security

Question 88

MapReduce in a nutshell

Answer 88

1. Prepare the input to map by selecting a key
2. Execute map in each node and generate output based on another key
3. Shuffle the output
4. Execute reduce
5. Produce the final output